Skip to main content

Setup of Single Sign-On

Dan Kenneth OffengÄrd
  • Updated

You can use Microsoft Active Directory on Azure to log into SEMINE via Single Sign-On.
The following outlines the steps required to setup SSO accurately using Microsoft Active Directory with Semine.

  • Select "Edit organization" in the Admin panel in Semine.

    SSO.PNG

  • Then select the Single Sign-on Setup tab.
    • Enabled - Activate Single Sign-On.
    • Display Name : Choose the display name for the login button.
    • Tenant ID: Provided by customer's IT department/Partner.
    • Application ID: Provided by customer's IT department/Partner.
    • Callback Path: [unique and predetermined] Set a unique Callback Path in the customer's Azure setup.
    • Optional: Restrict login to SSO only
    • Domain name: Set the domain name to customer's domain(s) (e.g.,domainName1.com, domainName2.com)


Microsoft Active Directory on Azure

Typically, your IT department or operating partner, responsible for managing O365/Azure, handles these tasks.

App Registrations

s -2.png

Go to Register an Application

  • Name : SemineSSO
  • Supported Account Types : Select: Accounts in this organizational directory only .
  • Redirect URI : Retrieve from the SSO tab in Semine, specifically from the Callback-Path field.


s 3.png

Overview

Semine requires the following two values, and you need to input them into the Semine interface:

  • Application (client) ID - Enter this into the field labeled Application Id
  • Directory (tenant) ID - Enter this into the field labeled TenantId / Authority


s 4.png

Certificates & Secrets

  • Click on Certificates & Secrets
  • Then on New client secret

s 5.png

Create a New Client Secret
Generate a new client secret with the following details:

  • Description: SemineSSO
  • Expires: Optional, based on the customer's preference.


Click Add

s 6.png

It should now appear as follows:

s 7.png

Then select Token configuration

  • Click on Add optional claim
  • Token Type: Select ID and then select e-mail


s 8.png


In the next dialog box, check the following and then click Add

s 9.png

  • Go to Authentication
    • Check the box for Id Tokens
    • Select "Yes" on enable the following mobile and desktop flows


s 10.png

  • Once you've saved the values in the SSO tab for Semine, please inform support@semine.no that the SSO setup is finished.
  • SEMINE will then activate it.
  • Once confirmation of activation is received, you can sign in by clicking the button with your chosen name.

    SSO button.PNG

 

 

 








 

 

 

 

Related articles

Comments

0 comments

Article is closed for comments.